[jboss-jira] [JBoss JIRA] (AS7-4747) xercesImpl-2.9.1-jbossas-1.jar is susceptible to CVE-2009-2625 (DoS Attack)
Stuart Douglas (JIRA)
jira-events at lists.jboss.org
Wed May 9 01:10:18 EDT 2012
[ https://issues.jboss.org/browse/AS7-4747?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Stuart Douglas resolved AS7-4747.
---------------------------------
Assignee: Jason Greene (was: Bartosz Baranowski)
Fix Version/s: 7.1.2.Final (EAP)
Resolution: Done
> xercesImpl-2.9.1-jbossas-1.jar is susceptible to CVE-2009-2625 (DoS Attack)
> ---------------------------------------------------------------------------
>
> Key: AS7-4747
> URL: https://issues.jboss.org/browse/AS7-4747
> Project: Application Server 7
> Issue Type: Bug
> Affects Versions: 7.1.1.Final
> Reporter: Arun Neelicattu
> Assignee: Jason Greene
> Labels: xercesImpl
> Fix For: 7.1.2.Final (EAP)
>
>
> The current version of xerces (_xercesImpl-2.9.1-jbossas-1.jar_) is vulnerable to [CVE-2009-2625|https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2625]
> This vulnerability was fixed in xerces versions >= 2.10
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list